← LibraryTechnique entry
AD-GMSACredential Access
Read gMSA Password (DSRM/msDS-ManagedPassword)
Extract a gMSA's blob via msDS-ManagedPasswordId/Data when ReadGMSAPassword right is held.
§ Where this technique fits
AD-GMSA is catalogued under the Credential Access tactic of the offensive-security kill-chain. It appears in 0 approved dossiers in the registry, typically.